AppL No. 09/651,465 

Reply to Office action of February 2, 2005 

Amendments to the Claims: 

This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

Listing of Claims: 

1 . (Currently Amended) A system for providing application services in a 
computing environment having both user-mode processes and privileged-mode 
processes, the system comprising: 

an agent executing in privileged mode and exposing an interface to user-mode 
processes; 

a user-mode component having an interface configured to access[[es]] the agent's 
exposed interface; and 

a configuration component specifying a list of installable code components that 
are authorized for installation, wherein the agent will only execute privilege mode 
functions in response to accesses by the user-mode code component when the installable 
code component is represented on the list; 

wherein the user-mode component comprises an application software installation 

wizard; 

wherein specifications are included within the configuration component 
specifying instructions for installing program components into an operating system; 

wherein the agent is capable of creating an instance of the application software 
installation wizard in accordance with a definition supplied in the configuration 
component [[.]] ; and 

wherein the configuration component includes an initialization file embedded 
within a cabinet file, the initialization file represented in a plain text format and 
comprising a plurality of sections each including attribute specifications, the initialization 
file including an AutoRegister section, an AutoUnregister section, and an allowAdmin 
section. 
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2. (Original) The system of claim 1 wherein the configuration component 
includes a digital signature. 

3. (Original) The system of claim 1 further comprising a user interface 
implemented within the user-mode component. 

4. (Cancelled) 

5. (Cancelled) 

6. (Original) The system of claim 1 wherein the agent behavior is configured 
by the contents of the configuration component. 

7. (Previously Presented) The system of claim 2 wherein the agent is capable 
of authenticating the digital signature. 

8. (Previously Presented) The system of claim 1 wherein specifications are 
included within the configuration component specifying a list of objects that are 
permitted to be created by the agent; and the agent is responsive to the list of objects to 
prevent creation of any object unless it is specified on the list of objects. 

9. (Cancelled) 

10. (Currently Amended) A method for managing privileges in a computing 
environment having both user-mode processes and privileged-mode processes, the 
method comprising: 

executing an agent in privileged mode; 

exposing an interface of the agent to user-mode processes; 

accessing the agent's exposed interface using a user-mode component; 

specifying a list of authorized code components in a configuration file; 

authenticating that the configuration file comes from a trusted source; and 
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executing privileged-mode processes specified by the configuration file using the 
agent, wherein the agent will only execute privileged-mode processes in response to 
access by the user-mode code component when the configuration file is authenticated as 
coming fi"om a trusted source; 

wherein the user-mode component comprises an application software installation 

wizard; 

wherein specifications are included within the configuration file specifying 
instructions for installing program components into an operating system; 

wherein the agent is capable of creating an instance of the application software 
installation wizard in accordance with a definition supplied in the configuration file[[.]] ; 
and 

wherein the configuration file includes an initialization file embedded within a 
cabinet file, the initializafion file represented in a plain text format and comprising a 
plurality of sections each including attribute specifications, the initialization file 
including an AutoRegister section, an AutoUnregister section, and an allowAdmin 
section, 

1 1 . (Original) The method of claim 10 further comprising specifying a digital 
signature within the configuration file. 

12 (Original) The method of claim 10 further comprising implementing a user 
interface implemented within the user-mode component. 

13. (Cancelled) 

14. (Original) The method of claim 10 further comprising extending the 
agent's program behavior according to the contents of the configuration file, 

15. (Previously Presented) The method of claim 1 1 wherein the digital 
signature is authenticated using the agent. 
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16. (Previously Presented) The method of claim 10 wherein a list of objects is 
specified within the configuration file that are permitted to be created by the agent; 
wherein, in response to the list of objects, creation of any object is prevented unless it is 
specified on the list of objects. 

17. (Cancelled) 

18. (Cancelled) 

19. (Cancelled) 

20. (Previously Presented) The system of claim 1 wherein the configuration 
component includes a cabinet (.cab) file. 

21 . (Previously Presented) The system of claim 20 wherein the cabinet (.cab) 
file is compressed. 

22. (Previously Presented) The system of claim 1 wherein the application 
software installation wizard is executed utilizing a network browser program. 

23. (Previously Presented) The system of claim 1 wherein the application 
software installation wizard includes a scripted user interface for supplying and obtaining 
user-specific information including a name and licensing information. 

24. (Previously Presented) The system of claim 1 wherein the application 
software installation wizard makes a call to a create object program component including 
an executable function defined in a dynamic link library (.dll) file, and the create object 
program component executes in a user-mode for sending a message to a create object 
interface of the agent, the message including an identification of the configuration 
component. 
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25. (Cancelled) 

26. (Previously Presented) The system of claim [[25]] i wherein the 
AutoRegister section includes a listing of file names associated with instructions used to 
register an associated file with the operating system, and the AutoUnregister section 
includes a listing of file names associated with instructions required to remove the 
associated file from a registry. 
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